Exploit: Malware attackBayer Pharmaceuticals: German multinational pharmaceutical and life sciences company

Risk to Small Business: 2 = Severe: In a statement this past Thursday, Bayer revealed that infectious software was discovered on its systems back in early 2018. Before removing the malware in March, the company proceeded to “spy” on the hackers to identify the responsible party. Without any further details on their incident response methodology or further information on what Bayer means by “spy” ID Agent recommends always contacting an Incident Response Team if a compromise has been identified. Allowing an unknown third party to continue accessing data is generally inadvisable. The drug maker announced that there is no evidence of data theft, and they have traced the source of the hack to a group known as Winnti.

Individual Risk: 2.428 = Severe: No individuals are at risk

How it Could Affect Your Customers’ Business: The era of industrial espionage is here, and small businesses should be taking notice. Hackers are setting their sights towards technology and intellectual property, given its tremendous value and sometimes limited security. Phishing campaigns are the most frequent of all attack vectors, followed by infection via custom malware.

Designed to protect against human error, Bullphish ID simulates phishing attacks and manages security awareness training campaigns to educate employees, making them the best defense against cybercrime. Learn more from Enterprise Systems. More information here: https://www.idagent.com/bullphish-id

Risk to Small Business: 2 = Severe: Members of the BC College Pension Plan are receiving notifications that their information may be at risk after a box went missing during an office move from last year. Contents of the container included microfiche with personal information of members who worked from 1982 to 1997, and the breach was discovered in October 2018. Although the corporation has declared this as a low risk security incident, FIPA argues that it is a high-risk attack. Along with negative publicity, the BC Pension Plan Corporation will face backlash from members and may spearhead the case for implementing mandatory data breach reporting requirements in British Columbia.

Individual Risk: 2.428 = Severe: Some of the information includes names, social insurance numbers and dates of birth. Although there is currently no indication of an attack, plan members should investigate identity and credit reports to see if they were affected. In the words of one of the affected members, West Kelowna resident Pamela Stevens, “the information is out there, and there are people that wait around for these things to happen to get people and to use their cards and information to misuse it.”

Customers Impacted: Around 8,000 How it Could Affect Your Customers’ Business: Delays in breach notifications compound over time and can prove costly for companies. Without proper detection, it becomes nearly impossible to identify the source of a breach, with the end-result being disgruntled customers, penalties, and more. Along with partnering up with security providers to incorporate Dark Web monitoring solutions, businesses must alert their customers immediately to maintain a healthy dialogue.

Enterprise Systems and Dark Web ID can monitor the Dark Web and find out if your employee or customers data has been compromised. We work with end customers to strengthen their security suite by offering industry-leading detection. Find out more here: https://www.idagent.com/dark-web/.

CHARLOTTE, NORTH CAROLINA – October, 2015 – It was announced that Charlotte Douglas Airport has selected Enterprise Systems Corporation to provide Managed Services of its network of Avaya Core switches. Managed services will include the Avaya 8600 series of core switches as well as the 4500 series, 4800 series and the VSP 7000 and VSP 8000 series of SPB switching.

ABOUT ENTERPRISE SYSTEMS CORPORATION

Enterprise Systems Corporation is a full service Technology Partner, providing consulting, deployment and managed services. Technology products and services include premise and cloud based Voice from Avaya, Mitel and Shoretel; Wired and Wireless Networking from Avaya, Extreme, Hewlett Packard Enterprise, Aruba, and Dell; Security from Watchguard and Palo Alto, servers from Lenovo, Dell and HP as well as cabling infrastructure.

ABOUT CHARLOTTE DOUGLAS AIRPORT

Over 32 million passengers travel through Charlotte Douglas International Airport connecting travelers to countless U.S. and international destinations. Charlotte Douglas International Airport is located in Charlotte, North Carolina.